Other terms

Data Security

Sweetcarolinestore will take reasonable steps to ensure that Personal Data is accurate, complete, current, secure, and reliable for its intended uses as described in this Privacy Statement. We employ reasonable physical, administrative, procedural, and technical security measures to protect Personal Data from loss, misuse, and unauthorized access, disclosure, alteration, or destruction.

Some of the security measures we employ include, among others:

• Security policies. We design, implement, and support our IT infrastructure, data center operations, cloud operations, products, and services according to documented security policies. At least annually, we assess our policy compliance and make necessary improvements to our policies and practices.
• Access control. We limit access to Personal Data only to those individuals who have an authorized purpose for accessing that information. We terminate those access privileges and credentials following job changes that no longer require such access and upon employment termination. We also have designated local or organizational data protection officers, stewards, or managers for various locations and organizations of Sweetcarolinestore and otherwise as and where required by applicable law.
• Data encryption. Our policies and procedures require that, wherever practicable, we use encrypted connections for any electronic transfers of Personal Data.

Unfortunately, no security measures can be guaranteed to be 100 percent effective, and no website, system, or network can be completely secure or “hacker proof,” “cyber-attack proof,” or “cyber-crime proof.” Please guard against unauthorized access to your passwords and the unauthorized use of computers and other electronic/data-access devices you own or control.

You might find Stay Safe Online, powered by the National Cyber Security Alliance, and its “Stop. Think. Connect.” initiative helpful and informative.

For more information about our security policies and practices, please visit our Trust Center.

Data Retention

Sweetcarolinestore will retain your Personal Data for as long as reasonably necessary for the purposes described in this Privacy Statement or as required by law. Personal Data will be kept until it is no longer necessary to provide our products and services, to fulfill our contractual agreements with you or your employer, to comply with applicable law, to protect Sweetcarolinestore’s rights and interests (e.g., where the retention is necessary for the establishment, exercise, or defense of legal claims), or as otherwise needed for lawful purposes. In determining this period, and where your employer is a Sweetcarolinestore customer or customer prospect, we take into consideration the duration of your tenure with your employer and the duration of our legal and contractual obligations and potential business relationship with your employer. Once Personal Data is no longer needed for these purposes, we will destroy, erase, or anonymize it.

Privacy Statement for Children

The Websites and Sweetcarolinestore platforms are not intended to be directed to children younger than sixteen. Sweetcarolinestore does not knowingly collect or intend to collect Personal Data from anyone younger than sixteen years of age. In the event we learn we have collected Personal Data from a child without parental consent, we will delete that information. If you believe we might have any information from or about a child under sixteen, please contact us at privacy@Sweetcarolinestore.com.

Enforcement

Sweetcarolinestore maintains procedures for verifying compliance with the commitments we make in this Privacy Statement. To do this, we complete one or more relevant Privacy compliance assessments at least annually and make improvements based on the results thereof.

We provide the resources identified in the Contact Information section of this Privacy Statement so you may raise Privacy-related questions or concerns with us. For disputes related to the EU-U.S. DPF, the UK-U.S. DPF, and the Swiss-U.S.DPF, we also provide the dispute resolution process noted in the Complaints section of this Privacy Statement so that you have a process and mechanism to enforce compliance with the standards set forth in this Privacy Statement.

We are subject to the jurisdiction of, and compliance monitoring and enforcement by, the U.S. Department of Commerce and U.S. Federal Trade Commission and by applicable national Data Protection Authorities with respect to certain Personal Data, such as Personal Data in HR data. Sweetcarolinestore commits to cooperating with EU Data Protection Authorities and the Swiss Federal Data Protection and Information Commissioner and complying with the advice given by such authorities regarding HR data transferred from the EU and Switzerland in the context of the employment relationship.

Changes and Supplemental Terms

We are committed to notifying data subjects regarding a change in this Privacy Statement in a timely manner. To that end, we will post a public notice via the Effective Date written at the top of this Privacy Statement and for at least 30 days afterward when we materially update or modify this Privacy Statement. You may request a file showing the changes from the last version by emailing privacy@Sweetcarolinestore.com.

From time to time, we may supplement or amend this Privacy Statement and other Privacy terms with website- or interaction-specific information and terms (“Supplemental Privacy Terms”). If so, we will notify you of any such applicable Supplemental Privacy Terms and give you the choice to consent or not consent to them.

Contact Information

You may contact our Ethics, Compliance & Privacy Office or our Data Protection Officer using the contact details below to exercise your Privacy rights or with any requests, questions, or concerns regarding your Personal Data or Sweetcarolinestore’s handling of Personal Data. Questions or concerns specific to Information Technology (“IT”) Security may also be directed to our Global Information Security Office.